ZyXEL Communications P-660H-T1v3s User Manual

ZyWALL USG 50

Unified Security Gateway

Default Login Details

LAN Port P3, P4
IP Address https://192.168.1.1
User Name admin
Password 1234

www.zyxel.com

Version 2.21
Edition 2, 11/2010

www.zyxel.com

Copyright © 2010
ZyXEL Communications Corporation

About This User's Guide

About This User's Guide

Intended Audience

This manual is intended for people who want to want to configure the ZyWALL
using the Web Configurator.

How To Use This Guide

•Read Chapter 1 on page 31 chapter for an overview of features available on the
ZyWALL.

•Read Chapter 3 on page 43 for web browser requirements and an introduction
to the main components, icons and menus in the ZyWALL Web Configurator.

•Read Chapter 4 on page 59 if you’re using the installation wizard for first time
setup and you want more detailed information than what the real time online
help provides.

•Read Chapter 5 on page 69 if you’re using the quick setup wizards and y ou want
more detailed information than what the real time online help provides.

• It is highly recommended you read Chapter 6 on page 87 for detailed
information on essential terms us ed in the ZyWALL, what prerequisites are
needed to configure a feature and how to use that feature.

• It is highly recommended you read Chapter 7 on page 109 for ZyWALL
application examples.

• Subsequent chapters are arranged by menu item as defined in the Web
Configurator. Read each chapter carefully for detailed information on that menu
item.

• To find specific information in this guide, use the Contents Overview, the
Table of Contents, the Index, or search the PDF file. E-mail
techwriters@zyxel.com.tw if you cannot find the information you require.

Related Documentation

•Quick Start Guide
The Quick Start Guide is designed to show you how to make the ZyWALL

hardware connections and access the Web Configurator wizards. (See the
wizard real time help for information on configuring each screen.) It also
contains a connection diagram and package contents list.

•CLI Reference Guide
The CLI Reference Guide explains how to use the Command-Line Interface (CLI)

to configure the ZyWALL.

Note: It is recommended you use the Web Configurator to configure the ZyWALL.

ZyWALL USG 50 User’s Guide

3

About This User's Guide

• Web Configurator Online Help
Click the help icon in any screen for help in configuring that screen and

supplementary information.

• ZyXEL Web Site
Please refer to www.zyxel.com

product certifications.

for additional support documentation and

User Guide Feedback

Help us help you. Send all User Guide-related comments, questi ons or suggestions
for improvement to the following address, or use e-mail instead. Thank you!

The Technical Writing Team,
ZyXEL Communications Corp.,
6 Innovation Road II,
Science-Based Industrial Park,
Hsinchu, 300, Taiwan.

E-mail: techwriters@zyxel.com.tw

Need More Help?

More help is available at www.zyx el.com.

4

• Download Library
Search for the latest product updates and documentation from this link. Read

the Tech Doc Overview to find out how to efficiently use the User Guide, Quick
Start Guide and Command Line Interface Reference Guide in order to better
understand how to use your product.

• Knowledge Base
If you have a specific question about your product, the answer may be here.

This is a collection of answers to previously asked questions about ZyXEL
products.

ZyWALL USG 50 User’s Guide

About This User's Guide

•Forum
This contains discussions on ZyXEL prod ucts. Learn from others who use ZyXEL

products and share your experiences as well.

Customer Support

Should problems arise that cannot be solved by the methods listed above, you
should conta ct your vendor. If you cannot contact your vendor, then contact a
ZyXEL office for the region in which you bought the device.

See http://www.zyxel.com/web/contact_us.php for contact information. Please
have the following informatio n ready when you contact an office.

• Product model and serial number.

•Warranty Information.

• Date that you received your device.

• Brief description of the problem and the steps you took to solve it.

Disclaimer

Graphics in this book may differ slightly from the product due to differences in
operating systems, operating system versions, or if you installed updated
firmware/software fo r y our dev ice. Ev ery effort has been made to ensur e that the
information in this manual is accurate.

ZyWALL USG 50 User’s Guide

5

Document Conventions

Warnings and Notes

These are how warnings and notes are shown in this User’s Guide.

Warnings tell you about things that could harm you or your device.

Note: Notes tell you other important information (for example, other things you may

need to configure or helpful tips) or recommendations.

Syntax Conventions

• The ZyWALL may be referred to as the “ZyWALL”, the “device”, the “system” or
the “product” in this User’s Guide.

• Product labels, screen names, field labels and field choices are all in bold font.

Document Conventions

• A key stroke is denoted by square brackets and uppercase text, for example,
[ENTER] means the “enter” or “ret urn” key on your keyboard.

• “Enter” means for you to type one or more characters and then press the
[ENTER] key. “Select” or “choose” means for you to use one of the predefined
choices.

• A right angle bracket ( > ) within a screen name denotes a mouse click. For
example, Maintenance > Log > Log Setting means you first click

Maintenance in the navigation panel, then the Log sub menu and finally the
Log Setting tab to get to that screen.

• Units of measurement may denote the “metric” value or the “scientific” value.
For example, “k” for kilo may denote “1000” or “1024”, “M” for mega may
denote “1000000” or “1048576” and so on.

• “e.g.,” is a shorthand for “for instance”, and “i.e.,” means “that is” or “in other
words”.

6

ZyWALL USG 50 User’s Guide

Document Conventions

Icons Used in Figures

Figures in this User’s Guide may use the following generic icons. The ZyWALL icon
is not an exact representation of your device.

ZyWALL Computer Notebook computer

Server Firewall Telephone

Switch Router

ZyWALL USG 50 User’s Guide

7

Safety Warnings

• Do NOT use this product near water, for example, in a wet basement or near a swimming
pool.

• Do NOT expose your device to dampness, dust or corrosive liquids.

• Do NOT store things on the device.

• Do NOT install, use, or service this device during a thunderstorm. There is a remote risk
of electric shock from lightning.

• Connect ONLY suitable accessories to the device.

• Do NOT open the device or unit. Opening or removing covers can expose you to
dangerous high voltage points or other risks. ONLY qualified service personnel should
service or disassemble this device. Please contact your vendor for further information.

• Make sure to connect the cables to the correct ports.

• Place connecting cables carefully so that no one will step on them or stumble over them.

• Always disconnect all cables from this device before servicing or disassembling.

• Use ONLY an appropriate power adaptor or cord for your device. Connect it to the right
supply voltage (for example, 110V AC in North America or 230V AC in Europe).

• Do NOT remove the plug and connect it to a power outlet by itself; always attach the plug
to the power adaptor first before connecting it to a power outlet.

• Do NOT allow anything to rest on the power adaptor or cord and do NOT place the
product where anyone can walk on the power adaptor or cord.

• Do NOT use the device if the power adaptor or cord is damaged as it might cause
electrocution.

• If the power adaptor or cord is damaged, remove it from the device and the power
source.

• Do NOT attempt to repair the power adaptor or cord. Contact your local vendor to order a
new one.

• Do not use the device outside, and make sure all the connections are indoors. There is a
remote risk of electric shock from lightning.

• CAUTION: RISK OF EXPLOSION IF BATTERY (on the motherboard) IS REPLACED BY AN
INCORRECT TYPE. DISPOSE OF USED BATTERIES ACCORDING TO THE INSTRUCTIONS.
Dispose them at the applicable collection point for the recycling of electrical and
electronic equipment. For detailed information about recycling of this product, please
contact your local city office, your household waste disposal service or the store where
you purchased the product.

• Do NOT obstruct the device ventilation slots, as insufficient airflow may harm your
device.

Safety Warnings

8

Your product is marked with this symbol, which is known as the WEEE mark. WEEE
stands for Waste Electronics and Electrical Equipment. It means that used electrical
and electronic products should not be mixed with general waste. Used electrical and
electronic equipment should be treated separately.

ZyWALL USG 50 User’s Guide

Contents Overview

Contents Overview

User’s Guide ........................................................................................................ ...................29

Introducing the ZyWALL ............................................................................................................ 31

Features and Applications ......................................................................................................... 37

Web Configurator ............................................. ... ... ... .... ............................................. ... ... .......... 43

Installation Setup Wizard .................................... ............................................................. ..........59

Quick Setup ............................................................................................................................... 69

Configuration Basics .............. ... ... .............................................................................................. 87

Tutorials ................................................................................................................................... 109

Technical Reference ............................................................................................................155

Dashboard ............................................................................................................................... 157

Monitor ...................................... ....................... ...................... ....................... ........................... 169

Registration ............................................................................................................................. 209

Interfaces ..................................... ....................................................... ..................................... 215

Trunks .................................................... .......................................... ........................................ 271

Policy and Static Routes ..........................................................................................................281

Routing Protocols ....................................................................................................................297

Zones .................................. ................... ................... .................... ................... .........................311

DDNS ...................................................................................................................................... 315

NAT ................................. ............................. .............................. ............................. ................. 321

HTTP Redirect ......................................................................................................................... 331

ALG ......................................................................................................................................... 335

IP/MAC Binding ....................................................................................................................... 343

Authentication Policy .......... ... ................................................ .... ... ........................................... 349

Firewall .................................................................................................................................... 357

IPSec VPN ................... ... .............................................. ... ... ... .... ... ... ........................................ 375

SSL VPN ..................................................................................................................................411

SSL User Screens ................................................................................................................... 421

SSL User Application Screens ................................................................................................ 431

ZyWALL SecuExtender .. .... ... ... ...............................................................................................433

Application Patrol .....................................................................................................................437

Anti-Virus ................................................................................................................................. 463

IDP ............................... .................... ................... ................... .................... ..............................479

ADP ......................................................................................................................................... 513

Content Filtering ....... ... ............................................................................................................533

Content Filter Reports ............................................................................................................. 557

Anti-Spam ................................................................................................................................ 565

User/Group .............................................................................................................................. 583

ZyWALL USG 50 User’s Guide

9

Contents Overview

Addresses .............................. ................... .................... ................... ................... ..................... 599

Services ................................. ....................................................... ........................................... 605

Schedules ................................. ................................................. ...............................................611

AAA Server .............................................................................................................................. 617

Authentication Method ................................. ................................................. ... ... .... ................. 627

Certificates ................................... ....................... ....................... ...................... ........................ 633

ISP Accounts ......................................... ... ... .... ... ... ..................................................................655

SSL Application ....................................................................................................................... 659

Endpoint Security .................................................................................................................... 665

System ................................... ...................... ....................... ....................... .............................. 675

Log and Report ........................................................................................................................ 723

File Manager ....................... ... ... ... .... ... ................................................ ... .... .............................. 737

Diagnostics .............................................................................................................................. 749

Reboot ..................................................................................................................................... 755

Shutdown ......................................... ............................. ............................. .............................. 757

Troubleshooting ..................................................... .................................................................. 759

Product Specifications ............................................................................................................. 775

10

ZyWALL USG 50 User’s Guide

Table of Contents

Table of Contents

About This User's Guide..........................................................................................................3

Document Conventions............................................................................................................6

Safety Warnings ........................................................................................................................8

Contents Overview ...................................................................................................................9

Table of Contents....................................................................................................................11

Part I: User’s Guide................................................................................ 29

Chapter 1

Introducing the ZyWALL ........................................................................................................31

1.1 Overview and Key Default Settings .....................................................................................31

1.2 Rack-mounted Installation ................................................................................................... 32

1.2.1 Rack-Mounted Installation Procedure ........................................................................ 32

1.3 Front Panel ......................................... ... .... ............................................. ... ... .... ... ... .............33

1.3.1 Front Panel LEDs .......................................... ............................................................. 33

1.4 Management Overview .......... .... ... ... ................................................ .... ... .............................34

1.5 Starting and Stopping the ZyWALL ............................ ... ... .... ................................................ 35

Chapter 2

Features and Applications.....................................................................................................37

2.1 Features ............................................. ... .... ... ............................................. ... .... ... ... .............37

2.2 Applications .................................................. ... ... .... ... ... ... .... ................................................ 39

2.2.1 VPN Connectivity ............. ............................................. ... ... ... .... ... ... .......................... 40

2.2.2 SSL VPN Network Access ........ ... .... ... ... ... .... ... ... ............................................. ... .... ... 40

2.2.3 User-Aware Access Control ....................................................................................... 42

2.2.4 Multiple WAN Interfaces ................... ... ... ... .... ... ... ....................................................... 42

Chapter 3

Web Configurator....................................................................................................................43

3.1 Web Configurator Requirements ......................................................................................... 43

3.2 Web Configurator Access ....................................................................................................43

3.3 Web Configurator Screens Overview .................................................................................. 45

3.3.1 Title Bar .................................. ... ............................................. .... ... ... .......................... 45

3.3.2 Navigation Panel .......... .... ... ... ... ................................................................................. 47

ZyWALL USG 50 User’s Guide

11

Table of Contents

3.3.3 Main Window .......................... ... ............................................. .... ... ... ... .... ... ... .............52

3.3.4 Tables and Lists .. ... ... ... .... ... ... ............................................. ... .... ... ... ... .... ...................54

Chapter 4

Installation Setup Wizard.......................................................................................................59

4.1 Installation Setup Wizard Screens ...................................................................................... 59

4.1.1 Internet Access Setup - WAN Interface ..................................................................... 59

4.1.2 Internet Access: Ethernet .......................................................................................... 60

4.1.3 Internet Access: PPPoE ............................................................................................. 62

4.1.4 Internet Access: PPTP .............................................................................................. 63

4.1.5 ISP Parameters ................................... ... ... .... ... ... ............................................. ... .... ... 64

4.1.6 Internet Access Setup - Second WAN Interface ........................................................ 65

4.1.7 Internet Access - Finish .............................................................................................66

4.2 Device Registration ........................................................................................................... 66

Chapter 5

Quick Setup.............................................................................................................................69

5.1 Quick Setup Overview ............................... ... ... ... .... ... ... ... .... ... ... .......................................... 69

5.2 WAN Interface Quick Setup .................................................................................................70

5.2.1 Choose an Ethernet Interface .................................................................... ... ... ... .... ... 70

5.2.2 Select WAN Type ............................. ... ... ... .... ............................................. ... ... ... .......70

5.2.3 Configure WAN Settings ............................................................................................ 71

5.2.4 WAN and ISP Connection Settings ............................................................................ 72

5.2.5 Quick Setup Interface Wizard: Summary ................................................................... 74

5.3 VPN Quick Setup .......... ... ... ... .... ............................................. ... ... ... .... ... ............................. 75

5.4 VPN Setup Wizard: Wizard Type ......................................................................................... 76

5.5 VPN Express Wizard - Scenario ......................................................................................... 77

5.5.1 VPN Express Wizard - Configuration ........................... ... ... ... .... ... ... ... ....................... 78

5.5.2 VPN Express Wizard - Summary ....................................................................... .... ... 79

5.5.3 VPN Express Wizard - Finish .................................................................................... 80

5.5.4 VPN Advanced Wizard - Scenario ............................................................................ 81

5.5.5 VPN Advanced Wizard - Phase 1 Settings ............................................................... 82

5.5.6 VPN Advanced Wizard - Phase 2 ............................................................................. 84

5.5.7 VPN Advanced Wizard - Summary ........................................................................... 85

5.5.8 VPN Advanced Wizard - Finish ................................................................................. 86

Chapter 6

Configuration Basics..............................................................................................................87

12

6.1 Object-based Configuration .......................................................................... .... ... ... .............87

6.2 Zones, Interfaces, and Physical Ports ................................................................................. 88

6.2.1 Interface Types .................................................... ... .... ... ... ... ... .... ... ... .......................... 89

6.2.2 Default Interface and Zone Configuration .................................................................. 89

6.3 Terminology in the ZyWALL ................... .... ... ... ... .... ... ... ............................................. ... .... ... 91

ZyWALL USG 50 User’s Guide

Table of Contents

6.4 Packet Flow ........................................ ............................................. .... ... ... ... .... ... ... .............91

6.4.1 Routing Table Checking Flow ..................................................................................... 92

6.4.2 NAT Table Checking Flow ............................. ... ... ... .... ... ... ... ... .... ................................ 94

6.5 Feature Configuration Overview ......................................................................................... 95

6.5.1 Feature ...................................... ... .... ... ... ... .... ... ............................................. ... ... ....... 95

6.5.2 Licensing Registration ............................ ... .... ... ... ... .... ... ... .......................................... 96

6.5.3 Licensing Update ................................................... .... ... ... ... ... .... ... ... ... ....................... 96

6.5.4 Interface .................... ... .............................................. ... ... ... ... .... ... ... .......................... 96

6.5.5 Trunks ............. .... ... ............................................. ... .... ... ... .......................................... 97

6.5.6 Policy Routes ................... ............................................. ... ... ... .... ... ... ... ....................... 97

6.5.7 Static Routes .................................... ... ... ... .............................................. ... ... ... ... ....... 98

6.5.8 Zones ............................................................ ... ... ... ............................................. ....... 98

6.5.9 DDNS ..... ............................................. ... ... .... ... ............................................. ... ... ....... 99

6.5.10 NAT .......................................................................................................................... 99

6.5.11 HTTP Redirect .......................................................................................................... 99

6.5.12 ALG ........................................................................................................................ 100

6.5.13 Auth. Policy ............................................................................................................100

6.5.14 Firewall ................................................................................................................... 101

6.5.15 IPSec VPN ............................................................................................................. 102

6.5.16 SSL VPN ................................................................................................................ 102

6.5.17 Application Patrol ...................................................................................................102

6.5.18 Anti-Virus ................................................................................................................ 103

6.5.19 IDP ......................................................................................................................... 103

6.5.20 ADP ........................................................................................................................ 103

6.5.21 Content Filter ..........................................................................................................104

6.5.22 Anti-Spam ...............................................................................................................104

6.6 Objects ............................................ ... ... .... ............................................. ... ... .... ... ..............105

6.6.1 User/Group ....................... ... ... ............................................. ... .... ... ... ... .... .................106

6.7 System ............. ............................................. ... ... .... ............................................. ..............106

6.7.1 DNS, WWW, SSH, TELNET, FTP, SNMP, Vantage CNM ........................................ 106

6.7.2 Logs and Reports ..................................................................................................... 107

6.7.3 File Manager ....................... ... ... ... ............................................................................ 107

6.7.4 Diagnostics ................ ... .... ... ... ... ... .............................................. ... ... ... .... .................108

6.7.5 Shutdown .................. ... .............................................. ... ... ... ... .... ... ... ........................108

Chapter 7

Tutorials.................................................................................................................................109

7.1 How to Configure Interfaces, Port Roles, and Zones ........................................................ 109

7.1.1 Configure a WAN Ethernet Interface ............................. ... ... ... .... ... ... ... .... ... ... ... ... .... ..110

7.1.2 Configure Port Roles .................................................................................................111

7.1.3 Configure the DMZ Interface for a Local Network ............... ...................................... 111

7.1.4 Configure Zones ........................... .... ... ... ... ................................................................112

7.2 How to Configure a Cellular Interface . ... ................................................. ... ... ......................113

ZyWALL USG 50 User’s Guide

13

Table of Contents

7.3 How to Configure Load Balancing ......................................................................................115

7.3.1 Set Up Available Bandwidth on Ethernet Interfaces .................................................115

7.3.2 Configure the WAN Trunk .........................................................................................116

7.4 How to Set Up an IPSec VPN Tunnel .................................................................................118

7.4.1 Set Up the VPN Gateway ..........................................................................................119

7.4.2 Set Up the VPN Connection ..................................................................................... 120

7.4.3 Configure Security Policies for the VPN Tunnel ...................................... ................. 121

7.5 How to Configure User-aware Access Control .................................................................. 122

7.5.1 Set Up User Accounts .............................................................................................. 122

7.5.2 Set Up User Groups ................................................................................................. 123

7.5.3 Set Up User Authentication Using the RADIUS Server ............................. ... ... ... .....124

7.5.4 Web Surfing Policies With Bandwidth Restrictions .................................................. 126

7.5.5 Set Up MSN Policies ................................................................................................ 129

7.5.6 Set Up Firewall Rules ............................................................................................... 130

7.6 How to Use a RADIUS Server to Authenticate User Accounts based on Groups ............. 131

7.7 How to Use Endpoint Security and Authentication Policies ............................................... 133

7.7.1 Configure the Endpoint Security Objects .................................................................133

7.7.2 Configure the Authentication Policy ......................................................................... 135

7.8 How to Configure Service Control ..................................................................................... 136

7.8.1 Allow HTTPS Administrator Access Only From the LAN ......................................... 137

7.9 How to Allow Incoming H.323 Peer-to-peer Calls .................................................. ... ... .... . 139

7.9.1 Turn On the ALG .............................. ... ............................................. ... .... ... ... ...........140

7.9.2 Set Up a NAT Policy For H.323 ................................................................................ 140

7.9.3 Set Up a Firewall Rule For H.323 ............................................................................ 142

7.10 How to Allow Public Access to a Web Server ............................. ... ....... ...... ....... ...... ....... . 143

7.10.1 Create the Address Objects ...................................................................................144

7.10.2 Configure NAT ........................................................................................................ 144

7.10.3 Set Up a Firewall Rule ........................................................................................... 145

7.11 How to Use an IPPBX on the DMZ .................................................................................. 146

7.11.1 Turn On the ALG .................................................................................................... 148

7.11.2 Create the Address Objects ................................................................................... 148

7.11.3 Setup a NAT Policy for the IPPBX .......................................................................... 149

7.11.4 Set Up a WAN to DMZ Firewall Rule for SIP .......................................................... 150

7.11.5 Set Up a DMZ to LAN Firewall Rule for SIP ...... ... .... ... ... ........................................ 151

7.12 How to Use Multiple Static Public WAN IP Addresses for LAN to WAN Traffic ............... 152

7.12.1 Create the Public IP Address Range Object ............ .............................................. 152

7.12.2 Configure the Policy Route .................................................................................... 153

Part II: Technical Reference................................................................ 155

Chapter 8

Dashboard.............................................................................................................................157

14

ZyWALL USG 50 User’s Guide

Table of Contents

8.1 Overview ............. ............................................. ... .... ... ... ... .... .............................................. 157

8.1.1 What Yo u Can Do in this Chapter ............................................................................ 157

8.2 The Dashboard Screen ..................................................................................................... 157

8.2.1 The CPU Usage Screen ........................................................................................... 162

8.2.2 The Memory Usage Screen ................... ... .... ... ... ... .... .............................................. 163

8.2.3 The Active Sessions Screen .................................................................................... 164

8.2.4 The VPN Status Screen ...... ... ... ............................................................................... 165

8.2.5 The DHCP Table Screen ..........................................................................................165

8.2.6 The Number of Login Users Screen .............................. ... ... ..................................... 166

Chapter 9

Monitor...................................................................................................................................169

9.1 Overview ............. ............................................. ... .... ... ... ... .... .............................................. 169

9.1.1 What Yo u Can Do in this Chapter ............................................................................ 169

9.2 The Port Statistics Screen ................................................................................................170

9.2.1 The Port Statistics Graph Screen .................... ... ... ................................................. . 172

9.3 Interface Status Screen ..................................................................................................... 173

9.4 The Traffic Statistics Screen ..............................................................................................175

9.5 The Session Monitor Screen ................ .... ... ... ... .... ... ... ... ................................................. . 178

9.6 The DDNS Status Screen .................................................................................................. 181

9.7 IP/MAC Binding Monitor ....................................................................................................181

9.8 The Login Users Screen ................................................................................................... 182

9.9 Cellular Status Screen ..................... ... ............................................. .... ... ... ... .... ... ... ...........183

9.9.1 More Information .... ... ...............................................................................................185

9.10 Application Patrol Statistics .............................................................................................186

9.10.1 Application Patrol Statistics: General Setup ............. ... ... ... ... .... ... ... ... .... ... ... ... ... .... . 187

9.10.2 Application Patrol Statistics: Bandwidth Statistics .................................................. 188

9.10.3 Application Patrol Statistics: Protocol Statistics ..................................................... 189

9.10.4 Application Patrol Statistics: Individual Protocol Statistics by Rule ....................... 190

9.11 The IPSec Monitor Screen .............................................................................................. 191

9.11.1 Regular Expressions in Searching IPSec SAs ....................................................... 192

9.12 The SSL Connection Monitor Screen ..............................................................................193

9.13 The Anti-Virus Statistics Screen ...................................................................................... 194

9.14 The IDP Statistics Screen ........... ... ... ............................................................................... 196

9.15 The Content Filter Statistics Screen ................................................................................ 198

9.16 Content Filter Cache Screen ........................................................................................... 200

9.17 The Anti-Spam Statistics Screen ..................................................................................... 203

9.18 The Anti-Spam Status Screen .........................................................................................205

9.19 Log Screen ......................................................................................................................206

Chapter 10

Registration...........................................................................................................................209

10.1 Overview .......................................................................................................................... 209

ZyWALL USG 50 User’s Guide

15

Table of Contents

10.1.1 What You Can Do in this Chapter .......................................................................... 209

10.1.2 What you Need to Know ........................................................................................ 209

10.2 The Registration Screen ...................................................................................................211

10.3 The Service Screen ......................................................................................................... 213

Chapter 11

Interfaces...............................................................................................................................215

11.1 Interface Overview ........................................................................................................... 215

11.1.1 What You Can Do in this Chapter ......................... .... ... ... ... ... .... ... ... ........................ 215

11.1.2 What You Need to Know ........................................................................................ 216

11.2 Port Role ....................... ... ............................................. .... ... ... ... ... .................................. 218

11.3 Ethernet Summary Screen ............................................................................................... 219

11.3.1 Ethernet Edit ..........................................................................................................221

11.3.2 Object References ..................................................................................................230

11.4 PPP Interfaces ................................................................................................................231

11.4.1 PPP Interface Summary ......................................................................................... 232

11.4.2 PPP Interface Add or Edit ..................................................................................... 233

11.5 Cellular Configuration Screen (3G) ..................................................................................237

11.5.1 Cellular Add/Edit Screen ......... ... .... ........................................................................ 239

11.6 VLAN Interfaces .............................................................................................................. 246

11.6.1 VLAN Summary Screen ......................................................................................... 248

11.6.2 VLAN Add/Edit ...................................................................................................... 249

11.7 Bridge Interfaces ............................................................................................................. 256

11.7.1 Bridge Summary .....................................................................................................258

11.7.2 Bridge Add/Edit ................................................... .... ... ... ... ... .... ... ........................... 259

11.7.3 Virtual Interfaces Add/Edit ...................................................................................... 264

11.8 Interface Technical Reference ......................................................................................... 266

Chapter 12

Trunks....................................................................................................................................271

12.1 Overview .......................................................................................................................... 271

12.1.1 What You Can Do in this Chapter .......................................................................... 271

12.1.2 What You Need to Know ........................................................................................ 272

12.2 The Trunk Summary Screen ................................................. ... ... ... .... ... ... ... .... ... ... ... ... .....276

12.3 Configuring a Trunk ........................................................................................................ 277

12.4 Trunk Technical Reference .............................................................................................. 279

Chapter 13

Policy and Static Routes......................................................................................................281

13.1 Policy and Static Routes Overview .................................................................................. 281

13.1.1 What You Can Do in this Chapter .......................................................................... 281

13.1.2 What You Need to Know ....................................................................................... 282

13.2 Policy Route Screen ........................................................................................................ 284

16

ZyWALL USG 50 User’s Guide

Table of Contents

13.2.1 Policy Route Edit Screen ....................................................................................... 287

13.3 IP Static Route Screen ....................................................................................................291

13.3.1 Static Route Add/Edit Screen ................................................................................. 292

13.4 Policy Routing Technical Reference ................................................................................ 293

Chapter 14

Routing Protocols .................................................................................................................297

14.1 Routing Protocols Overview ............................................................................................ 297

14.1.1 What You Can Do in this Chapter .......................................................................... 297

14.1.2 What You Need to Know ........................................................................................ 297

14.2 The RIP Screen ... ... .... ... ... ... .... ... ................................................ ... .... ... ........................... 298

14.3 The OSPF Screen ............... .... ... ... ................................................ .... ... ... ........................299

14.3.1 Configuring the OSPF Screen .................................. ......... .......... .......... ......... ........ 303

14.3.2 OSPF Area Add/Edit Screen .................................................................................306

14.3.3 Virtual Link Add/Edit Screen ................................................................................. 307

14.4 Routing Protocol Technical Reference ............................................................................ 308

Chapter 15

Zones .....................................................................................................................................311

15.1 Zones Overview ................................................................................................................311

15.1.1 What You Can Do in this Chapter ...........................................................................311

15.1.2 What You Need to Know ........................................................................................ 312

15.2 The Zone Screen ..................................... ... ................................................ .... ... ..............313

15.3 Zone Edit ........................................................................................................................ 314

Chapter 16

DDNS......................................................................................................................................315

16.1 DDNS Overview .............................................................................................................. 315

16.1.1 What You Can Do in this Chapter .......................................................................... 315

16.1.2 What You Need to Know ........................................................................................ 315

16.2 The DDNS Screen ...........................................................................................................316

16.2.1 The Dynamic DNS Add/Edit Screen ...................................................................... 318

Chapter 17

NAT.........................................................................................................................................321

17.1 NAT Overview .................................................................................................................. 321

17.1.1 What You Can Do in this Chapter .......................................................................... 321

17.1.2 What You Need to Know ........................................................................................ 322

17.2 The NAT Screen .................................. .... ... ... ... .... ................................................ ... ... ..... 322

17.2.1 The NAT Add/Edit Screen . ... ... ... .... ........................................................................ 324

17.3 NAT Technical Reference ................................................................................................327

Chapter 18

HTTP Redirect.......................................................................................................................331

ZyWALL USG 50 User’s Guide

17

Table of Contents

18.1 Overview .......................................................................................................................... 331

18.1.1 What You Can Do in this Chapter .......................................................................... 331

18.1.2 What You Need to Know ........................................................................................ 332

18.2 The HTTP Redirect Screen ............................................................................................. 333

18.2.1 The HTTP Redirect Edit Screen ............................................................................. 334

Chapter 19

ALG ........................................................................................................................................335

19.1 ALG Overview ................................................................................................................. 335

19.1.1 What You Can Do in this Chapter .......................................................................... 335

19.1.2 What You Need to Know ........................................................................................ 336

19.1.3 Before You Begin ...................................................................................................339

19.2 The ALG Screen .............................................................................................................. 339

19.3 ALG Technical Reference ................................................................................................ 341

Chapter 20

IP/MAC Binding.....................................................................................................................343

20.1 IP/MAC Binding Overview ............................................................................................... 343

20.1.1 What You Can Do in this Chapter .......................................................................... 343

20.1.2 What You Need to Know ........................................................................................ 344

20.2 IP/MAC Binding Summary ............................................................................................... 344

20.2.1 IP/MAC Binding Edit ............................................................................................... 345

20.2.2 Static DHCP Edit .................................................................................................... 346

20.3 IP/MAC Binding Exempt List ........................................................................................... 347

Chapter 21

Authentication Policy...........................................................................................................349

21.1 Overview .......................................................................................................................... 349

21.1.1 What You Can Do in this Chapter .......................................................................... 349

21.1.2 What You Need to Know ........................................................................................ 350

21.2 Authentication Policy Screen ........................................................................................... 350

21.2.1 Creating/Editing an Authentication Policy .............................................................. 353

Chapter 22

Firewall...................................................................................................................................357

22.1 Overview .......................................................................................................................... 357

22.1.1 What You Can Do in this Chapter .......................................................................... 357

22.1.2 What You Need to Know ........................................................................................ 358

22.1.3 Firewall Rule Example Applications ....................................................................... 360

22.1.4 Firewall Rule Configuration Example ..................................................................... 363

22.2 The Firewall Screen ................. ... ... ... ... ................................................. ... ... .... ................. 365

22.2.1 Configuring the Firewall Screen ............................... .............................................. 366

22.2.2 The Firewall Add/Edit Screen ................................................................................. 369

18

ZyWALL USG 50 User’s Guide

Table of Contents

22.3 The Session Limit Screen ................................................................................................370

22.3.1 The Session Limit Add/Edit Screen ........................................................................ 372

Chapter 23

IPSec VPN..............................................................................................................................375

23.1 IPSec VPN Overview .......................................................................................................375

23.1.1 What You Can Do in this Chapter .......................................................................... 375

23.1.2 What You Need to Know ........................................................................................ 376

23.1.3 Before You Begin ...................................................................................................378

23.2 The VPN Connection Screen .......................................................................................... 378

23.2.1 The VPN Connection Add/Edit (IKE) Screen ......................................................... 380

23.2.2 The VPN Connection Add/Edit Manual Key Screen .............................................. 387

23.3 The VPN Gateway Screen .............................................................................................. 390

23.3.1 The VPN Gateway Add/Edit Screen ...................................................................... 391

23.4 IPSec VPN Background Information ............................................................................... 399

Chapter 24

SSL VPN.................................................................................................................................411

24.1 Overview ...........................................................................................................................411

24.1.1 What You Can Do in this Chapter ...........................................................................411

24.1.2 What You Need to Know .........................................................................................411

24.2 The SSL Access Privilege Screen ................................................................................... 413

24.2.1 The SSL Access Policy Add/Edit Screen .............................................................. 414

24.3 The SSL Global Setting Screen .................. ... ... .... ................................................ ... ... .... . 416

24.3.1 How to Upload a Custom Logo .............................................................................. 418

24.4 Establishing an SSL VPN Connection ............................................................................. 419

Chapter 25

SSL User Screens.................................................................................................................421

25.1 Overview .......................................................................................................................... 421

25.1.1 What You Need to Know ........................................................................................ 421

25.2 Remote User Login ..........................................................................................................422

25.3 The SSL VPN User Screens ................................................ ... ... ... .... ... ... ... .... ... ... ... ........427

25.4 Bookmarking the ZyWALL ............................................................................................... 428

25.5 Logging Out of the SSL VPN User Screens ....................................................................428

Chapter 26

SSL User Application Screens ............................................................................................431

26.1 SSL User Application Screens Overview ........................................................................ 431

26.2 The Application Screen ...................................................................................................431

Chapter 27

ZyWALL SecuExtender.........................................................................................................433

ZyWALL USG 50 User’s Guide

19

Table of Contents

27.1 The ZyWALL SecuExtender Icon .................................................................................... 433

27.2 Statistics .......................................................................................................................... 434

27.3 View Log ..........................................................................................................................435

27.4 Suspend and Resume the Connection ....................... ..................................................... 435

27.5 Stop the Connection ........................................................................................................ 436

27.6 Uninstalling the ZyWALL SecuExtender .......................................................................... 436

Chapter 28

Application Patrol.................................................................................................................437

28.1 Overview .......................................................................................................................... 437

28.1.1 What You Can Do in this Chapter .......................................................................... 437

28.1.2 What You Need to Know ....................................................................................... 438

28.1.3 Application Patrol Bandwidth Management Examples ........................................... 443

28.2 Application Patrol General Screen ..................................................................................447

28.3 Application Patrol Applications ........................................................................................ 448

28.3.1 The Application Patrol Edit Screen ........................................................................ 449

28.3.2 The Application Patrol Policy Edit Screen ............................................................. 453

28.4 The Other Applications Screen ........................................................................................ 456

28.4.1 The Other Applications Add/Edit Screen ................................................................ 459

Chapter 29

Anti-Virus...............................................................................................................................463

29.1 Overview .......................................................................................................................... 463

29.1.1 What You Can Do in this Chapter .......................................................................... 463

29.1.2 What You Need to Know ........................................................................................ 464

29.1.3 Before You Begin ...................................................................................................465

29.2 Anti-Virus Summary Screen ............. ................................................. ... ... ... .... ... ... ... ... .... . 466

29.2.1 Anti-Virus Policy Add or Edit Screen ......................................................................469

29.3 Anti-Virus Black List .........................................................................................................471

29.4 Anti-Virus Black List or White List Add/Edit ..................................................................... 472

29.5 Anti-Virus White List ...... ... ... .... ... ... ... ... .... ... ... ... ................................................. ... ... ... ..... 473

29.6 Signature Searching ........................................................................................................ 474

29.7 Anti-Virus Technical Reference ........................................................................................ 477

Chapter 30

IDP..........................................................................................................................................479

30.1 Overview .......................................................................................................................... 479

30.1.1 What You Can Do in this Chapter .......................................................................... 479

30.1.2 What You Need To Know ....................................................................................... 479

30.1.3 Before You Begin ...................................................................................................480

30.2 The IDP General Screen ................................................................................................. 481

30.3 Introducing IDP Profiles ................................................................................................. 483

30.3.1 Base Profiles ..........................................................................................................484

20

ZyWALL USG 50 User’s Guide

Table of Contents

30.4 The Profile Summary Screen .......................................................................................... 485

30.5 Creating New Profiles ...................................................................................................... 486

30.5.1 Procedure To Create a New Profile ........................................................................ 486

30.6 Profiles: Packet Inspection ............................................................................................. 487

30.6.1 Profile > Group View Screen .................................................................................. 487

30.6.2 Policy Types ........................................................................................................... 490

30.6.3 IDP Service Groups ...............................................................................................491

30.6.4 Profile > Query View Screen .................................................................................. 493

30.6.5 Query Example ...................................................................................................... 495

30.7 Introducing IDP Custom Signatures ............................................................................... 497

30.7.1 IP Packet Header ...................................................................................................497

30.8 Configuring Custom Signatures ..................... ....................... ...................... ..................... 498

30.8.1 Creating or Editing a Custom Signature ................................................................ 500

30.8.2 Custom Signature Example ........................................... ... ..................................... 506

30.8.3 Applying Custom Signatures ..................................................................................508

30.8.4 Verifying Custom Signatures .................................................................................. 509

30.9 IDP Technical Reference .................................................................................................510

Chapter 31

ADP ........................................................................................................................................513

31.1 Overview .......................................................................................................................... 513

31.1.1 ADP and IDP Comparison ..................................................................................... 513

31.1.2 What You Can Do in this Chapter ......................................................................... 513

31.1.3 What You Need To Know ....................................................................................... 513

31.1.4 Before You Begin ...................................................................................................514

31.2 The ADP General Screen ........................ ................................................... ..................... 5 15

31.3 The Profile Summary Screen .......................................................................................... 516

31.3.1 Base Profiles ..........................................................................................................517

31.3.2 Configuring The ADP Profile Summary Screen .....................................................517

31.3.3 Creating New ADP Profiles ............................ ........................................................ 518

31.3.4 Traffic Anomaly Profiles ........................................................................................ 518

31.3.5 Protocol Anomaly Profiles ................................... .... ... ... ... ..................................... 521

31.3.6 Protocol Anomaly Configuration ............................................................................. 521

31.4 ADP Technical Reference ................................................................................................ 525

Chapter 32

Content Filtering...................................................................................................................533

32.1 Overview .......................................................................................................................... 533

32.1.1 What You Can Do in this Chapter .......................................................................... 533

32.1.2 What You Need to Know ........................................................................................ 533

32.1.3 Before You Begin ...................................................................................................535

32.2 Content Filter General Screen .................... ....................................................... ..............535

32.3 Content Filter Policy Add or Edit Screen ......................................................................... 538

ZyWALL USG 50 User’s Guide

21

Table of Contents

32.4 Content Filter Profile Screen ..........................................................................................540

32.5 Content Filter Categories Screen ................................................................................... 540

32.5.1 Content Filter Blocked and Warning Messages ..................................................... 552

32.6 Content Filter Customization Screen .............................................................................. 553

32.7 Content Filter Technical Reference ................................................................................. 555

Chapter 33

Content Filter Reports..........................................................................................................557

33.1 Overview .......................................................................................................................... 557

33.2 Viewing Content Filter Reports ............................................. ........................................... 557

Chapter 34

Anti-Spam..............................................................................................................................565

34.1 Overview .......................................................................................................................... 565

34.1.1 What You Can Do in this Chapter .......................................................................... 565

34.1.2 What You Need to Know ........................................................................................ 565

34.2 Before You Begin ............................................................................................................. 567

34.3 The Anti-Spam General Screen ....................................................................................... 567

34.3.1 The Anti-Spam Policy Add or Edit Screen ................................................ .............. 569

34.4 The Anti-Spam Black List Screen .................................................................................... 571

34.4.1 The Anti-Spam Black or White List Add/Edit Screen ...................................... ... .... . 573

34.4.2 Regular Expressions in Black or White List Entries ............................................... 574

34.5 The Anti-Spam White List Screen ....................................................................................575

34.6 The DNSBL Screen ......................................................................................................... 576

34.7 Anti-Spam Technical Reference ...................................................................................... 578

Chapter 35

User/Group............................................................................................................................583

35.1 Overview .......................................................................................................................... 583

35.1.1 What You Can Do in this Chapter .......................................................................... 583

35.1.2 What You Need To Know ....................................................................................... 583

35.2 User Summary Screen .................................................................................................... 586

35.2.1 User Add/Edit Screen ........................... .......... .......... ......... .......... .......... ......... ........ 586

35.3 User Group Summary Screen ......................................................................................... 589

35.3.1 Group Add/Edit Screen .......................................................................................... 590

35.4 Setting Screen ................................................................................................................ 591

35.4.1 Default User Authentication Timeout Settings Edit Screens ..................................594

35.4.2 User Aware Login Example ............... ... ... .... ... ........................................................ 596

35.5 User /Group Technical Reference ................................................................................... 597

Chapter 36

Addresses..............................................................................................................................599

36.1 Overview .......................................................................................................................... 599

22

ZyWALL USG 50 User’s Guide

Table of Contents

36.1.1 What You Can Do in this Chapter .......................................................................... 599

36.1.2 What You Need To Know ....................................................................................... 599

36.2 Address Summary Screen ....................... ........................................................................ 599

36.2.1 Address Add/Edit Screen ....................................................................................... 601

36.3 Address Group Summary Screen ............................... ....................... ......................... ..... 602

36.3.1 Address Group Add/Edit Screen ............................................................................ 603

Chapter 37

Services.................................................................................................................................605

37.1 Overview .......................................................................................................................... 605

37.1.1 What You Can Do in this Chapter .......................................................................... 605

37.1.2 What You Need to Know ........................................................................................ 605

37.2 The Service Summary Screen ....................... .......................... .......................... .............. 606

37.2.1 The Service Add/Edit Screen ............................ ..................................................... 608

37.3 The Service Group Summary Screen ........................ ... .... ... ... ... ... .... ... ... ... .... ................. 6 08

37.3.1 The Service Group Add/Edit Screen ...................................................................... 610

Chapter 38

Schedules..............................................................................................................................611

38.1 Overview ...........................................................................................................................611

38.1.1 What You Can Do in this Chapter ...........................................................................611

38.1.2 What You Need to Know .........................................................................................611

38.2 The Schedule Summary Screen ...................................................................................... 612

38.2.1 The One-Time Schedule Add/Edit Screen ............................................................. 613

38.2.2 The Recurring Schedule Add/Edit Screen ............................................... ... ... ... .... . 614

Chapter 39

AAA Server............................................................................................................................617

39.1 Overview .......................................................................................................................... 617

39.1.1 Directory Service (AD/LDAP) ................................................................ ................. 617

39.1.2 RADIUS Server ...................................................................................................... 618

39.1.3 ASAS ...................................................................................................................... 618

39.1.4 What You Can Do in this Chapter .......................................................................... 618

39.1.5 What You Need To Know ....................................................................................... 619

39.2 Active Directory or LDAP Server Summary ..................................................................... 621

39.2.1 Adding an Active Directory or LDAP Server ............. ............ ............. ............. ........ 621

39.3 RADIUS Server Summary ............................................................................................... 623

39.3.1 Adding a RADIUS Server ...................................................................................... 625

Chapter 40

Authentication Method.........................................................................................................627

40.1 Overview .......................................................................................................................... 627

40.1.1 What You Can Do in this Chapter .......................................................................... 627

ZyWALL USG 50 User’s Guide

23

Table of Contents

40.1.2 Before You Begin ...................................................................................................627

40.1.3 Example: Selecting a VPN Authentication Method ................................................ 627

40.2 Authentication Method Objects ...................................... .................................... .............. 628

40.2.1 Creating an Authentication Method Object ........................................... ... ... ... ... .... . 629

Chapter 41

Certificates ............................................................................................................................633

41.1 Overview .......................................................................................................................... 633

41.1.1 What You Can Do in this Chapter .......................................................................... 633

41.1.2 What You Need to Know ........................................................................................ 633

41.1.3 Verifying a Certificate .............................................................................................635

41.2 The My Certificates Screen ............................................................................................. 637

41.2.1 The My Certificates Add Screen ............................................................................ 638

41.2.2 The My Certificates Edit Screen ........... ............................................. .... ... ... ... ... .... . 643

41.2.3 The My Certificates Import Screen ........................................................................ 646

41.3 The Trusted Certificates Screen ..................................................................................... 647

41.3.1 The Trusted Certificates Edit Screen .................................................................... 648

41.3.2 The Trusted Certificates Import Screen ................................................................652

41.4 Certificates Technical Reference ..................................................................................... 653

Chapter 42

ISP Accounts.........................................................................................................................655

42.1 Overview .......................................................................................................................... 655

42.1.1 What You Can Do in this Chapter .......................................................................... 655

42.2 ISP Account Summary .................................................................................................... 655

42.2.1 ISP Account Edit ................................................................................................... 656

Chapter 43

SSL Application ....................................................................................................................659

43.1 Overview .......................................................................................................................... 659

43.1.1 What You Can Do in this Chapter .......................................................................... 659

43.1.2 What You Need to Know ........................................................................................ 659

43.1.3 Example: Specifying a Web Site for Access .......................................................... 660

43.2 The SSL Application Screen .......................... ... .... ... ... ... .... ... ... ... ... .... ... ... ... .... ... ... ... ... .... . 661

43.2.1 Creating/Editing a Web-based SSL Application Object ......................................... 662

Chapter 44

Endpoint Security.................................................................................................................665

44.1 Overview .......................................................................................................................... 665

44.1.1 What You Can Do in this Chapter .......................................................................... 666

44.1.2 What You Need to Know ........................................................................................ 666

44.2 Endpoint Security Screen ........ ................................................ ... ... .... ... ... ... .... ... ... ... ... .... . 667

44.3 Endpoint Security Add/Edit .............................................................................................. 669

24

ZyWALL USG 50 User’s Guide

Table of Contents

Chapter 45

System...................................................................................................................................675

45.1 Overview .......................................................................................................................... 675

45.1.1 What You Can Do in this Chapter .......................................................................... 675

45.2 Host Name ....................................................................................................................... 676

45.3 Date and Time ................................................................................................................ 676

45.3.1 Pre-defined NTP Time Servers List ............................................. ... ... .... ... ... ... ... .... . 679

45.3.2 Time Server Synchronization ................................................................................. 680

45.4 Console Port Speed ......................................................................................................... 681

45.5 DNS Overview ................................................................................................................. 681

45.5.1 DNS Server Address Assignment .......................................................................... 682

45.5.2 Configuring the DNS Screen ................................ .......................................... ........ 682

45.5.3 Address Record .................................................................................................... 685

45.5.4 PTR Record ........................................................................................................... 685

45.5.5 Adding an Address/PTR Record ............................................................................ 685

45.5.6 Domain Zone Forwarder ............... ............................................. ... ... .... ................. 686

45.5.7 Adding a Domain Zone Forwarder ................................. ........................................ 6 86

45.5.8 MX Record ............................................................................................................687

45.5.9 Adding a MX Record ..............................................................................................688

45.5.10 Adding a DNS Service Control Rule ................................................................... . 688

45.6 WWW Overview ..............................................................................................................689

45.6.1 Service Access Limitations .................................................................................... 689

45.6.2 System Timeout ..................................................................................................... 690

45.6.3 HTTPS ...................................................................................................................690

45.6.4 Configuring WWW Service Control ........................................................................ 691

45.6.5 Service Control Rules ............................................................................................ 695

45.6.6 Customizing the WWW Login Page ....................................................................... 695

45.6.7 HTTPS Example ....................................................................................................699

45.7 SSH .............................................................................................................................. 706

45.7.1 How SSH Works ......................................................... ... ... ... .... ... ... ........................ 707

45.7.2 SSH Implementation on the ZyWALL ..................................................................... 708

45.7.3 Requirements for Using SSH ................................................................................. 708

45.7.4 Configuring SSH ....................................................................................................708

45.7.5 Secure Telnet Using SSH Examples ...................................................................... 710

45.8 Telnet ...............................................................................................................................711

45.8.1 Configuring Telnet .................................................................................................. 712

45.9 FTP ................................................................................................................................. 713

45.9.1 Configuring FTP .....................................................................................................713

45.10 SNMP ........................................................................................................................... 715

45.10.1 Supported MIBs ................................................................................................... 717

45.10.2 SNMP Traps ......................................................................................................... 717

45.10.3 Configuring SNMP ............................................................................................... 717

45.11 Vantage CNM ........................ ... ... ... ... .... ........................................................................ 719

ZyWALL USG 50 User’s Guide

25

Table of Contents

45.11.1 Configuring Vantage CNM .. ... ... ................................................. ... ... ..................... 720

45.12 Language Screen .........................................................................................................722

Chapter 46

Log and Report .....................................................................................................................723

46.1 Overview .......................................................................................................................... 723

46.1.1 What You Can Do In this Chapter .......................................................................... 723

46.2 Email Daily Report ..........................................................................................................723

46.3 Log Setting Screens ....................................................................................................... 725

46.3.1 Log Setting Summary ............................................................................................. 726

46.3.2 Edit System Log Settings ......................................................................................727

46.3.3 Edit Remote Server Log Settings .......................................................................... 732

46.3.4 Active Log Summary Screen ................................ ............. .......... ............. ............. . 734

Chapter 47

File Manager..........................................................................................................................737

47.1 Overview .......................................................................................................................... 737

47.1.1 What You Can Do in this Chapter .......................................................................... 737

47.1.2 What you Need to Know ........................................................................................ 737

47.2 The Configuration File Screen .............................. ...................................................... .....740

47.3 The Firmware Package Screen ...................................................................................... 744

47.4 The Shell Script Screen .......................... ....................................................... .................746

Chapter 48

Diagnostics............................................................................................................................749

48.1 Overview .......................................................................................................................... 749

48.1.1 What You Can Do in this Chapter .......................................................................... 749

48.2 The Diagnostic Screen ....................................................................................................749

48.3 The Packet Capture Screen ............................................................................................750

48.3.1 The Packet Capture Files Screen .......................................................................... 752

48.3.2 Example of Viewing a Packet Capture File .............................. ... ... ... .... ... ... ... ... .....753

Chapter 49

Reboot....................................................................................................................................755

49.1 Overview .......................................................................................................................... 755

49.1.1 What You Need To Know ....................................................................................... 755

49.2 The Reboot Screen .........................................................................................................755

Chapter 50

Shutdown...............................................................................................................................757

50.1 Overview .......................................................................................................................... 757

50.1.1 What You Need To Know ....................................................................................... 757

50.2 The Shutdown Screen ..................................................................................................... 757

26

ZyWALL USG 50 User’s Guide

Table of Contents

Chapter 51

Troubleshooting....................................................................................................................759

51.1 Resetting the ZyWALL .....................................................................................................773

51.2 Getting More Troubleshooting Help ................................................................................. 774

Chapter 52

Product Specifications.........................................................................................................775

52.1 Power Adaptor Specifications .......................................................................................... 780

Appendix A Log Descriptions...............................................................................................783

Appendix B Common Services.............................................................................................841

Appendix C Importing Certificates........................................................................................845

Appendix D Open Software Announcements.......................................................................871

Appendix E Legal Information..............................................................................................917

Index.......................................................................................................................................921

ZyWALL USG 50 User’s Guide

27

Table of Contents

28

ZyWALL USG 50 User’s Guide

PART I

User’s Guide

29

30